From 03b1b3bc6be26b35d7281486a57abdec383a440b Mon Sep 17 00:00:00 2001
From: Andrew Kozlik <andrew.kozlik@gmail.com>
Date: Tue, 2 Nov 2021 10:16:12 +0100
Subject: [PATCH] feat(core): Show path warning for SignMessage.

---
 core/.changelog.d/1656.added.5             |  1 +
 core/src/apps/bitcoin/sign_message.py      |  6 ++++--
 tests/device_tests/test_msg_signmessage.py | 25 ++++++++++++++++++++++
 tests/ui_tests/fixtures.json               |  5 +++--
 4 files changed, 33 insertions(+), 4 deletions(-)
 create mode 100644 core/.changelog.d/1656.added.5

diff --git a/core/.changelog.d/1656.added.5 b/core/.changelog.d/1656.added.5
new file mode 100644
index 000000000..e73c934c4
--- /dev/null
+++ b/core/.changelog.d/1656.added.5
@@ -0,0 +1 @@
+Show warning dialog in SignMessage if a non-standard path is used.
diff --git a/core/src/apps/bitcoin/sign_message.py b/core/src/apps/bitcoin/sign_message.py
index 967a70bfd..e9294855d 100644
--- a/core/src/apps/bitcoin/sign_message.py
+++ b/core/src/apps/bitcoin/sign_message.py
@@ -8,7 +8,7 @@ from apps.common.paths import validate_path
 from apps.common.signverify import decode_message, message_digest
 
 from .addresses import address_short, get_address
-from .keychain import with_keychain
+from .keychain import validate_path_against_script_type, with_keychain
 
 if False:
     from trezor.messages import SignMessage
@@ -25,7 +25,9 @@ async def sign_message(
     address_n = msg.address_n
     script_type = msg.script_type or InputScriptType.SPENDADDRESS
 
-    await validate_path(ctx, keychain, address_n)
+    await validate_path(
+        ctx, keychain, address_n, validate_path_against_script_type(coin, msg)
+    )
 
     node = keychain.derive(address_n)
     address = get_address(script_type, coin, node)
diff --git a/tests/device_tests/test_msg_signmessage.py b/tests/device_tests/test_msg_signmessage.py
index bb777293c..d9fe41750 100644
--- a/tests/device_tests/test_msg_signmessage.py
+++ b/tests/device_tests/test_msg_signmessage.py
@@ -350,3 +350,28 @@ def test_signmessage_pagination_trailing_newline(client):
             n=parse_path("m/44h/0h/0h/0/0"),
             message=message,
         )
+
+
+@pytest.mark.skip_t1
+def test_signmessage_path_warning(client):
+    message = "This is an example of a signed message."
+
+    with client:
+        client.set_expected_responses(
+            [
+                # expect a path warning
+                message_filters.ButtonRequest(
+                    code=messages.ButtonRequestType.UnknownDerivationPath
+                ),
+                message_filters.ButtonRequest(code=messages.ButtonRequestType.Other),
+                message_filters.ButtonRequest(code=messages.ButtonRequestType.Other),
+                messages.MessageSignature,
+            ]
+        )
+        btc.sign_message(
+            client,
+            coin_name="Bitcoin",
+            n=parse_path("m/86h/0h/0h/0/0"),
+            message=message,
+            script_type=messages.InputScriptType.SPENDWITNESS,
+        )
diff --git a/tests/ui_tests/fixtures.json b/tests/ui_tests/fixtures.json
index 3e0ed77b6..af2066d93 100644
--- a/tests/ui_tests/fixtures.json
+++ b/tests/ui_tests/fixtures.json
@@ -576,6 +576,7 @@
 "test_msg_signmessage.py::test_signmessage_pagination[utf_nospace]": "9a36cae6e21029e403b4f30ec88fc6da92ac8643b2c63ad7da7b7bc57ecc106b",
 "test_msg_signmessage.py::test_signmessage_pagination[utf_text]": "4ac1d8e2491164d442b700ea65e430867d74a941ac0d0dc8d4f51f4494fd0bb0",
 "test_msg_signmessage.py::test_signmessage_pagination_trailing_newline": "3ecd60468981b8c59cae21ae1189ad42b9d69b87e86c17e51b40185e31a5c52d",
+"test_msg_signmessage.py::test_signmessage_path_warning": "2c8369a05493ccdd6a368f3428050f22fc5aa42cf5c34e4995c47c3c7bf764fc",
 "test_msg_signtx.py-test_attack_change_input_address": "5f230e46301f0af85b5c40944cae1a8e4d3fc576fb19d7b7374decb463c8be62",
 "test_msg_signtx.py-test_attack_change_outputs": "2e8e05aa366da0ce2990a2b8b76f13973af8eaa11ec0cb5591412a9a5ba48da4",
 "test_msg_signtx.py-test_attack_modify_change_address": "72b96c639ac76ecccbe5d710a1c84eba6711879c329952b18ffab385ca79bafd",
@@ -789,8 +790,8 @@
 "test_nonstandard_paths.py::test_getpublicnode[m-3'-100'-4-255-script_types1]": "c09de07fbbf1e047442180e2facb5482d06a1a428891b875b7dd93c9e4704ae1",
 "test_nonstandard_paths.py::test_getpublicnode[m-4-255-script_types0]": "c09de07fbbf1e047442180e2facb5482d06a1a428891b875b7dd93c9e4704ae1",
 "test_nonstandard_paths.py::test_getpublicnode[m-49-0-63-0-255-script_types4]": "c09de07fbbf1e047442180e2facb5482d06a1a428891b875b7dd93c9e4704ae1",
-"test_nonstandard_paths.py::test_signmessage[m-1195487518-6-255-script_types3]": "da9682c495ea2cdc7513404ed533461de199d5abde5e2d269acb99c013debfb3",
-"test_nonstandard_paths.py::test_signmessage[m-1195487518-script_types2]": "4a625dc911357f101240d0a39c8e7091a0f0ae684ff3796ef32a36021f5c9d45",
+"test_nonstandard_paths.py::test_signmessage[m-1195487518-6-255-script_types3]": "7ac64354602a89c0a47419e224db81a059dd103a66959c94789fd787dd4c69ee",
+"test_nonstandard_paths.py::test_signmessage[m-1195487518-script_types2]": "976f9c147269fc68beef182cd8efeb35422147f30fe24369b43021c1e68b9d8e",
 "test_nonstandard_paths.py::test_signmessage[m-3'-100'-4-255-script_types1]": "4f73135d2ec9add695e0a22d855816558b4ba9329a2828f9c9930be6245bdc2d",
 "test_nonstandard_paths.py::test_signmessage[m-4-255-script_types0]": "0988cc8bdc5879744bd33190fddc5b5aa137fdd7214abb003c8000a871d98f14",
 "test_nonstandard_paths.py::test_signmessage[m-49-0-63-0-255-script_types4]": "540df94c73a4eed8fe88cdb475e2b31df752dca9e47b102792c01064ee432752",